CNNVD-202601-4807 Information
CNNVD ID
CNNVD-202601-4807
Related CVE
- CNNVD Published: 2026-01-28
Description (Chinese)
SolarWinds Web Help Desk是美国SolarWinds公司的一套服务台和资产管理软件。该软件支持集中式知识库、IT资产管理、项目和任务管理等功能。 SolarWinds Web Help Desk存在信任管理问题漏洞,该漏洞源于存在硬编码凭证,可能导致访问管理功能。
Description (English)
SolarWinds Web Help Desk is a service desk and asset management software for SolarWinds in the United States. The software supports functions such as a centralized knowledge base, IT asset management, project and task management. There is a trust management gap in SolarWinds Web Help Desk, which stems from the existence of hard-coded vouchers that may lead to access to management functions.
Hazard Level
Medium
Vulnerability Type
信任管理问题
Affected Vendor
SolarWinds
Published
2026-01-28
Last Modified
2026-02-24
References
https://documentation.solarwinds.com/en/success_center/whd/content/release_notes/whd_2026-1_release_notes.htm https://www.solarwinds.com/trust-center/security-advisories/CVE-2025-40537